Linux Kernel md/raid5-cache Deadlock Vulnerability in r5l_exit_log Function

A deadlock vulnerability has been identified in the Linux kernel's RAID 5 cache management. This issue arises in the 'r5l_exit_log' function, where a newly introduced commit inadvertently creates a deadlock scenario. The problem occurs because the function attempts to clear a log reference while holding a mutex, preventing the associated wait event from being processed. As a result, the function can become stuck, unable to complete its operation. This vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability leads to a deadlock condition, where the system becomes unresponsive due to a halted process that cannot complete its execution.

Reproduction

The vulnerability can be reproduced by invoking the 'r5l_exit_log' function while the 'reconfig_mutex' is held. This can be done by triggering a reconfiguration event that locks the mutex, then calling the exit log function, which will attempt to clear the log reference and wake up a waiting event. However, the log reference clearing will fail to release the mutex, causing a deadlock.

Remediation

The vulnerability has been addressed in the Linux kernel. Users can apply the latest patches available in the Linux kernel stable tree to resolve this issue.